Skills
skills/ajshedivy/ibmi-agent-skills/java/Gen Agent Trust Hub

java

Pass

Audited by Gen Agent Trust Hub on Apr 1, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: All database operations are restricted to read-only SELECT statements from system-provided management views (QSYS2.JVM_INFO).
  • [SAFE]: The skill uses environment variables (${DB2i_HOST}, ${DB2i_USER}, ${DB2i_PASS}) for database connectivity rather than hardcoding credentials.
  • [SAFE]: SQL queries are correctly parameterized (e.g., using :limit, :wait_time) which protects against SQL injection attacks from user-supplied inputs.
  • [SAFE]: The configuration includes ignore-unauthorized: true, which disables SSL certificate verification. While this is a common necessity for internal IBM i environments with self-signed certificates, it is noted as a standard practice violation for secure network communication.
  • [SAFE]: The skill provides no mechanisms for arbitrary command execution, file system modification, or data exfiltration.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 1, 2026, 02:34 PM